CVE-2006-2187
CVE-2006-2187 describes multiple cross-site scripting (XSS) vulnerabilities in zenphoto versions 1.0.1 beta and earlier. The issues allow remote attackers to inject arbitrary web script or HTML through: (1) the a parameter in i.php, and (2) the album and (3) the image parameters in index.php. NVD...